Cybersecurity Analyst | Cloud Security | Compliance Assessment
Certified professional with extensive experience in security monitoring, vulnerability assessment, and infrastructure protection across AWS, Azure, GCP and OCI environments. I work at the intersection of offensive and defensive security, cloud audit automation, and operational risk reduction.
Currently at Dedalus, I lead security and compliance assessments in multicloud environments, develop security policies, and promote InfoSec culture within organizations.
- Cloud security and compliance (AWS, Azure, OCI)
- Vulnerability assessment and testing
- InfoSec management and risk mitigation
- Infrastructure monitoring and network security
- Security frameworks and regulatory compliance
- Audit automation and configuration hardening
- aws_scripts
- Automation scripts for auditing, hardening, and configuration analysis in AWS environments
- Compliance assessment against security best practices and attack surface reduction
- azure_scripts
- Automation of security and compliance checks across Azure resources
- Scripts for configuration analysis, identity, and security posture review
- oci_scripts
- Tools for security assessment and configuration auditing in OCI
- Automation of security control collection and validation
- cve_kb_extractor
- Extraction and correlation of CVEs with Knowledge Base (KB) articles
- Supports patch prioritization and vulnerability management workflows
- ipam_multicloud
- IP address management and inventory across multicloud environments
- Centralized visibility of subnets, ranges, and allocations across providers
- security-reports
- Templates and automations for security and compliance report generation
- Structured documentation of findings, risks, and recommendations for stakeholders
Dedalus — Cybersecurity Analyst
São Paulo, BR • 2022 – Present
Security and compliance assessments across AWS, Azure, and OCI. Security policy development, alert mitigation, and integration of security protocols with IT, development, and business teams.
- 100% increase in client engagement on security assessments over two years
- 50% reduction in security alert response time
- Led selection of a new assessment tool, achieving 90% cost savings
Movile — Infrastructure Analyst
São Paulo, BR • 2019 – 2022
Network administration (Firewall, BGP, VLANs, IPsec VPNs), Kubernetes environments (GKE/EKS), security audits, pentests, and ISO 27001 certification support.
AWS · Azure · OCI · Linux · FreeBSD · Kubernetes · Docker · Git · Chef
Prowler · Zeek · Suricata · NMAP · Burp Suite · OWASP ZAP
Zabbix · Grafana · Fortigate · Pentest · Audits
| Certification | Issuer | Year |
|---|---|---|
| AWS Certified Security – Specialty | AWS | 2023 |
| Certified in Cybersecurity (CC) | (ISC)² | 2022 |
| Certified Network Security Specialist (CNSS) | ICSI | 2021 |
| Microsoft Certified: Security, Compliance & Identity Fundamentals | Microsoft | 2023 |
Computer Engineering — Metrocamp, Campinas, SP, Brazil
🇧🇷 Portuguese — Native 🇺🇸 English — Advanced 🇪🇸 Spanish — Basic